[jboss-cvs] jboss-seam/examples/seamspace/resources/META-INF ...

Shane Bryzak Shane_Bryzak at symantec.com
Sun Jan 28 00:26:30 EST 2007 

  User: sbryzak2
  Date: 07/01/28 00:26:30

  Modified:    examples/seamspace/resources/META-INF   security-rules.drl
  Removed:     examples/seamspace/resources/META-INF   security-config.xml
  Log:
  moved role permissions from config to rules
  
  Revision  Changes    Path
  1.6       +20 -11    jboss-seam/examples/seamspace/resources/META-INF/security-rules.drl
  
  (In the diff below, changes in quantity of whitespace are not shown.)
  
  Index: security-rules.drl
  ===================================================================
  RCS file: /cvsroot/jboss/jboss-seam/examples/seamspace/resources/META-INF/security-rules.drl,v
  retrieving revision 1.5
  retrieving revision 1.6
  diff -u -b -r1.5 -r1.6
  --- security-rules.drl	27 Jan 2007 14:05:38 -0000	1.5
  +++ security-rules.drl	28 Jan 2007 05:26:30 -0000	1.6
  @@ -4,12 +4,20 @@
   
   import org.jboss.seam.security.Identity;
   import org.jboss.seam.security.rules.PermissionCheck;
  -import org.jboss.seam.security.SeamPermission;
  +import org.jboss.seam.security.rules.Role;
   
   import org.jboss.seam.example.seamspace.Member;
   import org.jboss.seam.example.seamspace.MemberFriend;
   import org.jboss.seam.example.seamspace.MemberImage;
   
  +rule AssignAdminUserRole
  +when
  +  Role(name == "admin")
  +  not Role(name == "user")
  +then
  +  assert(new Role("user"));
  +end;
  +
   rule ViewImage
     no-loop
     activation-group "permissions"
  @@ -22,6 +30,17 @@
     modify(c);
   end;
   
  +rule CreateBlogComment
  +  no-loop
  +  activation-group "permissions"
  +when
  +  c: PermissionCheck(name == "blog", action == "createComment", granted == false)
  +  Role(name == "user")
  +then
  +  c.grant();
  +  modify(c);
  +end;
  +
   rule CreateBlog
     no-loop
     activation-group "permissions"
  @@ -45,13 +64,3 @@
     c.grant();
     modify(c);
   end;
  -
  -rule DefaultPolicy
  -  salience -10
  -  activation-group "permissions"  
  -when
  -  c: PermissionCheck(granted == false)
  -  SeamPermission(name == (c.getName()), action == (c.getAction()))
  -then
  -  c.grant();
  -end;

More information about the jboss-cvs-commits mailing list